Privacy Policy
Your privacy is our highest priority. This policy explains how we handle data across the MedimindAI ecosystem.
Last updated: June 3, 2026
1. Introduction
MedimindAI ("we", "us", or "our") is committed to protecting your privacy and ensuring the security of any information you provide when using our healthcare tools and services. This Privacy Policy applies to all websites, applications, and services operated by MedimindAI.
By accessing or using our services, you agree to the collection, use, and disclosure of information in accordance with this policy. If you do not agree with this policy, please do not use our services.
2. Information We Collect
We collect minimal information necessary to provide our services. The types of information we may collect include:
2.1 Personal Information
- Name and email address — when you contact us, subscribe to our newsletter, or create an account (optional)
- Professional information — such as your medical specialty, institution, or role (when voluntarily provided)
- Payment information — processed securely via Stripe. We do not store full credit card details on our servers.
2.2 Usage Information
- Device and browser information — IP address, browser type, operating system, and device type
- Log data — pages visited, time spent, features used, and error reports
- Cookies — small data files stored on your device to improve functionality
Important: We do not collect, store, or process identifiable patient health information (PHI/PHI) through our tools. Our clinical calculators and decision support tools are designed for anonymous, immediate use without data storage.
3. How We Use Your Information
We use the information we collect to:
- 1Provide, maintain, and improve our healthcare tools and services
- 2Process payments and manage subscriptions through Stripe
- 3Respond to your inquiries, feedback, and support requests
- 4Send you updates, newsletters, and educational content (only if you opt in)
- 5Analyze usage patterns to improve tool functionality and user experience
- 6Ensure security and prevent fraudulent activity
- 7Comply with legal obligations and enforce our terms
4. How We Share Your Information
We do not sell, rent, or trade your personal information. We only share information in the following limited circumstances:
Service Providers: We engage trusted third-party service providers (such as Stripe for payment processing, and hosting providers) to operate our services. These providers are bound by confidentiality and data protection obligations.
Legal Requirements: We may disclose information if required by law, court order, or governmental regulation, or if necessary to protect our rights, property, or safety, or that of our users.
Business Transfers: In the event of a merger, acquisition, or sale of assets, your information may be transferred as part of that transaction. We will notify you of any such change in ownership.
5. Data Security
We implement appropriate technical and organizational measures to protect your information against unauthorized access, alteration, disclosure, or destruction:
- All data transmission is encrypted using SSL/TLS technology
- Payment processing is handled entirely by Stripe — we never store your full credit card details
- Access to personal data is restricted to authorized personnel only
- Regular security audits and vulnerability assessments are conducted
- We maintain incident response procedures for potential data breaches
While we strive to use commercially acceptable means to protect your information, no method of transmission over the internet or electronic storage is 100% secure. We cannot guarantee absolute security.
6. Your Rights & Choices
Depending on your jurisdiction, you may have the following rights regarding your personal information:
Access
Request a copy of the personal data we hold about you
Correction
Request that we correct inaccurate or incomplete information
Deletion
Request deletion of your personal data (subject to legal obligations)
Portability
Request transfer of your data to another service provider
Restriction
Request limitation of how we process your data
Objection
Object to certain types of processing, including marketing
To exercise any of these rights, please contact us at privacy@medimindai.com. We will respond within 30 days.
7. International Data Transfers
MedimindAI is headquartered in Pakistan, with collaborative hubs in the United Kingdom and the United Arab Emirates. Your information may be transferred to and processed in these countries. We ensure that any such transfers are conducted in accordance with applicable data protection laws and that appropriate safeguards are in place.
For users in the European Economic Area (EEA), we ensure that data transfers outside the EEA are protected by Standard Contractual Clauses (SCCs) or other legally approved mechanisms.
8. Children's Privacy
Our services are not intended for children under the age of 13. We do not knowingly collect personal information from children under 13. If you are a parent or guardian and believe that your child has provided us with personal information, please contact us immediately. If we discover that we have collected personal information from a child under 13, we will delete that information promptly.
9. Changes to This Policy
We may update this Privacy Policy from time to time to reflect changes in our practices, legal requirements, or service offerings. We will notify you of any material changes by posting the new policy on this page and updating the "Last Updated" date. Your continued use of our services after any changes constitutes acceptance of the updated policy.
10. Contact Us
If you have any questions, concerns, or requests regarding this Privacy Policy or our data practices, please contact us:
Email: privacy@medimindai.com
Address: Clifton, Block 5, Karachi 75600, Pakistan
Response Time: Within 48 hours